Skip to main content

Finalize Identity Certification Decisions​

This API finalizes all decisions made on an identity campaign certification and initiates any remediations required. A token with ORG_ADMIN or CERT_ADMIN authority is required to call this API. Reviewers for this certification can also call this API. This API does not support requests for certifications assigned to Governance Groups.

Path Parameters
  • id string required

    The identity campaign certification ID

    Example: ef38f94347e94562b5bb8424a56397d8
Responses

An identity campaign certification object

Schema
  • id string

    id of the certification

  • name string

    name of the certification

  • campaign object
  • id string

    The unique ID of the campaign.

  • name string

    The name of the campaign.

  • type string

    Possible values: [CAMPAIGN]

    The type of object that is being referenced.

  • campaignType string

    Possible values: [MANAGER, SOURCE_OWNER, SEARCH]

    The type of the campaign.

  • description string

    The description of the campaign set by the admin who created it.

  • correlatedStatus

    Possible values: [CORRELATED, UNCORRELATED]

    The correlatedStatus of the campaign. Only SOURCE_OWNER campaigns can be Uncorrelated. An Uncorrelated certification campaign only includes Uncorrelated identities (An identity is uncorrelated if it has no accounts on an authoritative source).

  • mandatoryCommentRequirement string

    Possible values: [ALL_DECISIONS, REVOKE_ONLY_DECISIONS, NO_DECISIONS]

    Determines whether comments are required for decisions during certification reviews. You can require comments for all decisions, revoke-only decisions, or no decisions. By default, comments are not required for decisions.

  • completed boolean

    Have all decisions been made?

  • identitiesCompleted int32

    The number of identities for whom all decisions have been made and are complete.

  • identitiesTotal int32

    The total number of identities in the Certification, both complete and incomplete.

  • created date-time

    created date

  • modified date-time

    modified date

  • decisionsMade int32

    The number of approve/revoke/acknowledge decisions that have been made.

  • decisionsTotal int32

    The total number of approve/revoke/acknowledge decisions.

  • due date-time

    The due date of the certification.

  • signed date-time

    The date the reviewer signed off on the Certification.

  • reviewer object
  • id string

    The id of the reviewer.

  • name string

    The name of the reviewer.

  • email string

    The email of the reviewing identity.

  • type string

    Possible values: [IDENTITY]

    The type of the reviewing identity.

  • created date-time

    The created date of the reviewing identity.

  • modified date-time

    The modified date of the reviewing identity.

  • reassignment object
  • from object
  • id string

    The id of the certification.

  • name string

    The name of the certification.

  • type string

    Possible values: [CERTIFICATION]

  • reviewer object
  • id string

    The id of the reviewer.

  • name string

    The name of the reviewer.

  • email string

    The email of the reviewing identity.

  • type string

    Possible values: [IDENTITY]

    The type of the reviewing identity.

  • created date-time

    The created date of the reviewing identity.

  • modified date-time

    The modified date of the reviewing identity.

  • comment string

    The comment entered when the Certification was reassigned

  • hasErrors boolean

    Identifies if the certification has an error

  • errorMessage string

    Description of the certification error

  • phase string

    Possible values: [STAGED, ACTIVE, SIGNED]

    The current phase of the campaign.

    • STAGED: The campaign is waiting to be activated.
    • ACTIVE: The campaign is active.
    • SIGNED: The reviewer has signed off on the campaign, and it is considered complete.
Loading...